Hi Passwords to download the content are good and if they expire quickly then the user needs to request a new one via email if they need to redownload which is a hassle if they are passing it around. Therefore they will pass the download.
Passwords on pdfs are insecure so your client needs to take a slightly more prosaic view of things. Accept that passwords may be shared about but that many users will decide to pay to avoid a) guilt and b) the hassle Give something extra like support that can't be accessed if the user hasn't paid but is free/discounted for those who have. Or suck it up and pay the commissions to sell via the magshop or zinio but know that you have their security experts protecting your IP. Ultimately anything that I download to my computer is mine... its just how hard you make it for me to distribute it that counts. Sarah King @itamer p: 09 815 8642 m: 0273 711 298 skype: sarah.king On Thu, Aug 11, 2011 at 5:14 PM, Aaron Singline - Turboweb Limited < [email protected]> wrote: > Could you not create password protected PDF's on request from a logged in > account using PHP? > > I haven't used any techniques myself but I just google searched "Password > protect a PDF document in PHP" and hit this page. > http://www.idsecuritysuite.com/blog/password-protect-a-pdf-document-in-php > > I'd imagine you could encrypt on the way out if the person was logged in > with their account on the site. Say just use the account number or > something uniquely generated as the password for the PDF. If you are > securely storing their passwords so you can't reverse them out then you can > not use their password. > > There are probably other resources out there for encrypting PDF's on the > way out. > > Of course this assumes a lot of things not least is that the original > document is in something you can read with PHP. It also assumes that the > readers have access to a login on the site that can be identified as having > access to this functionality. :) > > Good luck, > > > Aaron > > > -- > *Turboweb Limited* > Aaron Singline (about > me)<http://www.turboweb.co.nz/team/2/Aaron-Singline-Co-Founder?ref=email> > Office > +64 3 474 5953 > Cell 022 657 8302 > Web: www.turboweb.co.nz > Twitter: www.twitter.com/turboweb 23 Vogel St > Dunedin > New Zealand > *Note:* For prompt attention for all support issues, please email > [email protected]. > > On 11/08/2011 4:55 p.m., Berend de Boer wrote: > > "Kent" == Kent Parker <[email protected]> <[email protected]> > writes: > > Kent> Provided the pdf reader uses a standard http request to > Kent> obtain the file then this can be done using urlrewrite. I > Kent> have a php script for creating such directories on a per > Kent> user basis. Each user has files stored in individual > Kent> directory which has a .htaccess file with rewrite rule using > Kent> rewritebase. User only has access to the url if logged in > Kent> with their own account. > > But as I read the request he wants to secure the PDF themselves, not > the initial download. > > > -- > NZ PHP Users Group: http://groups.google.com/group/nzphpug > To post, send email to [email protected] > To unsubscribe, send email to > [email protected] > -- NZ PHP Users Group: http://groups.google.com/group/nzphpug To post, send email to [email protected] To unsubscribe, send email to [email protected]
<<turboweb-s.jpg>>
